CVE-2021-21603

Опубликовано: 13 янв. 2021

Источник: debian

Описание

Jenkins 2.274 and earlier, LTS 2.263.1 and earlier does not escape notification bar response contents, resulting in a cross-site scripting (XSS) vulnerability.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
jenkins	removed			package

Связанные уязвимости

CVE-2021-21603

CVSS3: 5.4

redhat

около 5 лет назад

Jenkins 2.274 and earlier, LTS 2.263.1 and earlier does not escape notification bar response contents, resulting in a cross-site scripting (XSS) vulnerability.

CVE-2021-21603

CVSS3: 5.4

nvd

около 5 лет назад

Jenkins 2.274 and earlier, LTS 2.263.1 and earlier does not escape notification bar response contents, resulting in a cross-site scripting (XSS) vulnerability.

GHSA-98gq-6hxg-52r6

CVSS3: 5.4

github

больше 3 лет назад

XSS vulnerability in Jenkins notification bar